Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

Bellematyma's avatar
Bellematyma
Icon for Nimbostratus rankNimbostratus
Apr 09, 2025

File dowloaded is corrupted

I've noticed that downloading an excel report fails from one of our customer's websites, which is published through the big ip F5 (LTM and ASM module enabled).   The resulting file doesn't contain t...
application delivery
Nikoolayy1's avatar
Nikoolayy1
Icon for MVP rankMVP
Apr 16, 2025

I see  that you opened a second post and to be honest I see no point in doing so.

 

Outside of that probably you have tested "modify /sys db tmm.http.passthru.invalid_content_length value enable" ?

 

Error Message: 011f0016:3: http_process_state_prepend - Invalid action:<code> Server sends too much data.

 

 

Interesting to review if you have ASM/AWAF features that need to check the full response body and to review the ASM logs as well.

 

(See the related links as well):

ASM/AWAF features that cause HTTP response accumulation

 

Check the ASM logs:

 

Configuring the BIG-IP ASM system to parse HTTP responses that are larger than 50 MB in length (11.x - 15.x)

 

You may also test stopping the ASM if needed when the file download URL is matched and just for "HTTP_RESPONSE" event as to not create big security hole.

 

example:

Bypassing ASM on HTTP response | DevCentral

LiefZimmerman's avatar
LiefZimmerman
Icon for Admin rankAdmin
Apr 16, 2025

I archived the other post Nikoolayy1​ - thanks for the heads up.

Bellematyma​ - if this addresses your question please consider Mark As Solution on Nikoolayy1's post.

Cheers.